CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-8082

The Widgets Reset WordPress plugin through 0.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.2%

CVSS Severity

CVSS v3 Score 4.3

References

https://wpscan.com/vulnerability/47b2cd60-9ac4-49cf-8ca9-7d90656fc397/
https://wpscan.com/vulnerability/47b2cd60-9ac4-49cf-8ca9-7d90656fc397/

Products affected by CVE-2024-8082

Justintadlock » Widgets Reset » Version: Any

cpe:2.3:a:justintadlock:widgets_reset:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8082

Products

Pricing

Contact Us